Description

Cross-site scripting (XSS) vulnerability in the admin CGI script for Mailman before 2.1.4 allows remote attackers to steal session cookies and conduct unauthorized activities.

Remediation

References

CVE-2003-0965

Related Vulnerabilities

WordPress Plugin ComicPress Manager 'lang' Parameter Cross-Site Scripting (1.4.9.9)

Liferay Portal Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-15839)

WordPress Plugin Sendit WP Newsletter 'id' Parameter SQL Injection (2.1.0)

MySQL CVE-2018-2645 Vulnerability (CVE-2018-2645)

WordPress Plugin Comment Highlighter SQL Injection (0.13)

Severity

Medium

Classification

CVE-2003-0965

Tags

Missing Update Known Vulnerabilities